| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2004-09-17 | Missing #ifdefs. | Hakan Olsson | |
| 2004-08-14 | When using -K (keynote disabled), check peers' proposal against isakmpd.conf. | Hans-Joerg Hoexer | |
| ok ho@ henning@ | |||
| 2004-08-08 | spacing | Theo de Raadt | |
| 2004-06-25 | Keynote policy checking can now be disabled by "-K" switch and config tag | Hans-Joerg Hoexer | |
| "Use-Keynote". Default is to use keynote. ok henning@ ho@ | |||
| 2004-06-20 | Make the payload array in struct message dynamic, since we need to handle | Hakan Olsson | |
| payloads in the private range, such as the pre-RFC NAT-D/NAT-OA. Replace TAILQ_FIRST(&msg->payload[i]) instances with function calls. | |||
| 2004-06-15 | also use MSG_AUTHENTICATED flag. | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-06-14 | KNF, style, 80c, etc. hshoexer@ ok | Hakan Olsson | |
| 2004-06-10 | Mark authenticated messages explicitly. Better check for authentication before | Hans-Joerg Hoexer | |
| deleteing SAs. This fix is needed to solve the problems reported by Thomas Walpuski, previous diff was not sufficient. Pointed out by Thomas. Thanks! ok ho@ niklas@, testing and spellcheck by todd@ msf@ | |||
| 2004-06-09 | Style nits. hshoexer@ ok | Hakan Olsson | |
| 2004-04-28 | remove unused variable and shorten names of two other. Removed some spaces | Hans-Joerg Hoexer | |
| while around. ok ho@ markus@ | |||
| 2004-04-15 | partial move to KNF. More to come. This has happened because there | Theo de Raadt | |
| are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer | |||
| 2004-04-07 | -Wsign-compare nits. hshoexer@ ok. | Hakan Olsson | |
| 2004-02-27 | (C)-2004 | Hakan Olsson | |
| 2004-02-27 | Follow RFC 2408 more closely regarding how to better check the proposal | Hakan Olsson | |
| returned by the other peer (the responder). Some implementations (notably the Cisco PIX) does not follow a SHOULD in section 4.2 of the RFC. With certain proposal combinations this caused us to setup the wrong SA resulting in us being unable to process incoming IPsec traffic (over this tunnel). Tested against a number of different IKE implementations. hshoexer@ ok. | |||
| 2004-02-20 | More small adjustments of log messages. | Hans-Joerg Hoexer | |
| 2004-02-20 | Fix some double free errors. While around, adjust a log message. | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-01-16 | Added -v option. Enables logging of successful exchange completion. | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2003-06-10 | boring cleanups | Theo de Raadt | |
| 2003-06-04 | Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos | Hakan Olsson | |
| D. Keromytis and Niels Provos. | |||
| 2003-06-03 | Cleanup. Use 'sizeof variable' instead of magic constants. | Hakan Olsson | |
| 2002-09-11 | signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok. | Hakan Olsson | |
| 2002-06-14 | Recognize the ECN_TUNNEL attribute. | Hakan Olsson | |
| 2002-06-11 | Various IPComp-related mods | Hakan Olsson | |
| 2002-06-10 | Zap a few remaining libkeynote refs. | Hakan Olsson | |
| 2002-06-10 | The dlopen() stuff goes away. | Hakan Olsson | |
| 2002-06-07 | Avoid some gcc3 warnings. From David Krause <openbsd@davidkrause.com> | Hakan Olsson | |
| 2002-06-06 | Style, and a few additional format/type mods. | Hakan Olsson | |
| 2002-06-01 | size_t must be cast to (unsigned long) and printed using %lu | Theo de Raadt | |
| 2002-03-06 | Unbreak MD5 and SHA1 passphrases in policy check. From | Hakan Olsson | |
| <chris@stallion.oz.au>. | |||
| 2002-01-23 | the last few sprintf -> snprintf | Hakan Olsson | |
| 2002-01-23 | strcpy->strlcpy | Hakan Olsson | |
| 2001-10-26 | Just rename sockaddr_data/len functions to sockaddr_addrdata/addrlen. | Hakan Olsson | |
| 2001-10-05 | Some more debug level fixes. | Hakan Olsson | |
| 2001-08-15 | Some more style... | Hakan Olsson | |
| 2001-07-01 | More Style police, but also sane checking of address | Niklas Hallqvist | |
| family vs stated ID-type. | |||
| 2001-06-29 | Change get_src/get_dst API as we get the length with sa_len. | Hakan Olsson | |
| 2001-06-29 | Be consistent. | Hakan Olsson | |
| 2001-06-27 | IPv6. Also avoid a couple of mem leaks. | Hakan Olsson | |
| 2001-06-07 | Get rid of useless x509_policy_asserts[] | Angelos D. Keromytis | |
| 2001-05-31 | Store/retrieve the right information in terms of keys. | Angelos D. Keromytis | |
| 2001-04-09 | Style police a'la niklas@. | Hakan Olsson | |
| 2001-03-13 | Add logging classes for Negotiation and Policy, and change a number of | Hakan Olsson | |
| debug messages to use these instead. Change a number of 'log_print' to debug messages to keep the noise down. Use 'log_error' instead of 'log_print' in some cases when we have errno. Some indentation fixes. (niklas@ ok) | |||
| 2001-02-19 | passphrase-md5-hex: and passphrase-sha1-hex: formats for passphrases. | Angelos D. Keromytis | |
| 2001-02-08 | Add debug printf. | Angelos D. Keromytis | |
| 2001-01-27 | (c) 2001 | Niklas Hallqvist | |
| 2001-01-26 | Pedantic style police | Niklas Hallqvist | |
| 2001-01-26 | Merge with EOM 1.139 | Niklas Hallqvist | |
| author: niklas Remove blank line author: ho Print warning with log_print, not log_error. author: ho Report if doi->get_spi() fails. | |||
| 2001-01-14 | Do the HASH verification before handling the SA payload. | Angelos D. Keromytis | |
| 2001-01-10 | If only the Remote-ID is specified for a Phase 2 configuration, use | Angelos D. Keromytis | |
| our address for Local-ID; useful for road-warrior scenarios (adrian@lion.aba.net.au) | |||
| 2000-10-16 | Merge with EOM 1.135 | Niklas Hallqvist | |
| author: provos better referencing. okay niklas@ author: angelos Eliminate bogus freeing of static variable. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |